$selsearch =	'
SELECT 
	Uni,Prof,Bearbeiter,Jahr,Semester,ID,Thema,status
FROM 
	Habilitation 
	WHERE 1 ';
	
if ( strlen($_GET["uni"])>0 ) { $selsearch	.= ' AND Uni LIKE "'.$_GET["uni"].'%" '; }
if ( strlen($_GET["jahr"])>0 ) { $selsearch	.= ' AND jahr LIKE "'.$_GET["jahr"].'%" '; }
if ( strlen($_GET["thema"])>0 ) { $selsearch	.= ' AND Thema LIKE "%'.$_GET["thema"].'%" '; }

$selsearch .=	' ORDER BY '.$o.' LIMIT '.$posSelect.','.$perpage;

<?php
	echo date("g:i:s a");
?>

First visit. No session, no cookies so far.

$_COOKIE: 
Array()

$_SESSION: 
Array
(
    [Config] => Array
        (
            [rand] => 2031703447
            [time] => 1166640164
            [userAgent] => 05c06381cba0c03d1fda664faf636fab
        )

)

SID: WEGNERDE=4068f91034bca9992f4e86fb555b3997

sessioncomponent Object
(
    [_log] => 
    [CakeSession] => cakesession Object
        (
            [_log] => 
            [valid] => 1
            [error] => Array
                (
                    [2] => Config doesn't exist
                    [1] => Session is valid
                )

            [_userAgent] => 05c06381cba0c03d1fda664faf636fab
            [path] => /index.php/
            [lastError] => 1
            [security] => high
            [time] => 1166638964
            [sessionTime] => 1166640164
            [host] => www.[snip].de
            [cookieLifeTime] => 0
        )

    [base] => /index.php
    [webroot] => /wegner/webroot/
    [here] => /index.php/nodes/view/18
    [params] => Array
        (
            [controller] => nodes
            [action] => view
            [pass] => Array
                (
                    [0] => 18
                )

            [form] => Array
                (
                )

            [url] => Array
                (
                    [url] => /nodes/view/18
                )

            [bare] => 0
            [webservices] => 
            [plugin] => 
        )

    [action] => view
    [data] => 
    [plugin] => 
)

DB:
select '4068f91034bca9992f4e86fb555b3997', zero results
insert row with id '4068f91034bca9992f4e86fb555b3997'

===================
Second page visit
===================

$_COOKIE:
Array
(
    [WEGNERDE] => 4068f91034bca9992f4e86fb555b3997
)

$_SESSION:
Array
(
    [Config] => Array
        (
            [rand] => 724195738
            [time] => 1166640598
            [userAgent] => 05c06381cba0c03d1fda664faf636fab
        )

)

SID: (empty)

sessioncomponent Object
(
    [_log] => 
    [CakeSession] => cakesession Object
        (
            [_log] => 
            [valid] => 1
            [error] => Array
                (
                    [2] => Config doesn't exist
                    [1] => Session is valid
                )

            [_userAgent] => 05c06381cba0c03d1fda664faf636fab
            [path] => /index.php/
            [lastError] => 1
            [security] => high
            [time] => 1166639398
            [sessionTime] => 1166640598
            [host] => www.[snip].de
            [cookieLifeTime] => 0
        )

    [base] => /index.php
    [webroot] => /wegner/webroot/
    [here] => /index.php/users/login
    [params] => Array
        (
            [controller] => users
            [action] => login
            [form] => Array
                (
                )

            [url] => Array
                (
                    [url] => /users/login
                )

            [bare] => 0
            [webservices] => 
            [plugin] => 
        )

    [action] => login
    [data] => 
    [plugin] => 
)


DB:
select id 'c2042ca664205240f5e327762e615d72', 0 results
insert new row with id = c2042ca664205240f5e327762e615d72

date ("Y-m-d H:i")

echo <<<EOT

<p>Lorem ipsum dolor sit amet, consectetuer adipiscing elit, sed diam nonummy nibh euismod tincidunt ut laoreet dolore magna aliquam erat volutpat. Ut wisi enim ad minim veniam, quis nostrud exerci tation ullamcorper suscipit lobortis nisl ut aliquip ex ea commodo consequat.</p>

EOT;

$_SERVER['PHP_SELF']

header("Content-type: text/plain");

header("Location: index.php");

$text = ereg_replace("[[:alpha:]]+://[^<>[:space:]]+[[:alnum:]/]", "<a href=\"\\0\">\\0</a>", $text);

//mysqli_xxx
function inSql($value){
	global $conn;
	if( get_magic_quotes_gpc() ) $value = stripslashes( $value );
	$value = mysqli_real_escape_string( $conn, $value );
	return $value;
}
#echo inSql("testeando '"); 

//mysql_xxx
function inSql($value){
	global $conn;
	if( get_magic_quotes_gpc() ) $value = stripslashes( $value );
	$value = mysql_real_escape_string( $value );
	return $value;
}
#echo inSql("testeando '");

#Diferentes versiones de php:
function inSql ($string) {
   global $conn,
   if(version_compare(phpversion(),"4.3.0")=="-1") {
     mysql_escape_string($string);
   } elseif ($conn) {
     mysql_real_escape_string($string,$conn);
   } else { return false; }
}